$ rpki-client -vvf rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.mft File: hU_nJ1Ng0HgQr_umwo__I1gqIOs.mft (raw, json) Hash identifier: dZpZj2VFbPV/p6pylfKReFGYSOwn+iyqXde+TCm5jrk= Subject key identifier: D4:3A:8C:42:9F:62:34:21:66:A8:19:8E:9B:5C:F7:6B:56:E4:0D:22 Authority key identifier: 85:4F:E7:27:53:60:D0:78:10:AF:FB:A6:C2:8F:FF:23:58:2A:20:EB Certificate issuer: /CN=A91958BE/serialNumber=854FE7275360D07810AFFBA6C28FFF23582A20EB Certificate serial: 01F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hU_nJ1Ng0HgQr_umwo__I1gqIOs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.mft Manifest number: 01EA Signing time: Sun 19 Oct 2025 05:00:32 +0000 Manifest this update: Sun 19 Oct 2025 05:00:32 +0000 Manifest next update: Sun 26 Oct 2025 05:00:32 +0000 Files and hashes: 1: hU_nJ1Ng0HgQr_umwo__I1gqIOs.crl (hash: Qw8t27npblgzGuJ2w6v4A89VoNttUXAdPAxmq/QXcKo=) 2: 54FB2C8CD61711EEB983D919C4F9AE02.roa (hash: JeP8VoOcpiutGG7hGzbyaQvIgNDCVBOYu3S0WeuVu3E=) 3: 5576D030D61711EEB983D919C4F9AE02.roa (hash: UaaSyqLY1EU1feMuBNb93HrMgg8A6BJd78TyE8+TiZU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.crl rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hU_nJ1Ng0HgQr_umwo__I1gqIOs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 496 (0x1f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91958BE, serialNumber=854FE7275360D07810AFFBA6C28FFF23582A20EB Validity Not Before: Oct 19 05:00:32 2025 GMT Not After : Oct 26 05:00:32 2025 GMT Subject: CN=68f47070-cdd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:02:f5:0a:32:18:1e:51:31:79:f3:31:03:d7: 4e:01:1e:e0:8b:99:67:eb:1a:1d:d2:32:1c:c9:e8: 0d:58:13:0e:5e:33:84:7b:4a:92:65:94:cf:3e:28: 71:46:79:23:36:ce:6e:b1:34:ac:5c:b0:90:f3:02: 45:aa:5d:c2:b7:5c:a1:c0:02:6b:b8:52:fa:be:91: ca:80:4e:26:a3:5e:f9:38:07:40:8a:d2:0a:31:ea: 58:25:67:31:fd:86:58:7d:7a:31:44:54:ab:f9:66: ae:9f:0c:0c:6b:75:3a:ba:3e:c5:c2:ed:e5:af:91: c7:ec:94:05:04:63:f5:1b:60:c7:e9:ce:57:64:f6: 7f:8c:82:c9:b2:fe:2c:8d:5b:c2:15:e3:2c:e1:eb: 1e:e1:2c:e7:e7:23:64:3d:97:54:41:43:6a:ad:30: c0:21:56:24:97:e5:4b:45:35:71:34:bb:9d:3e:2f: d2:7e:29:16:77:fe:c9:2f:99:e4:94:0b:87:c4:dc: 9c:11:7c:27:b5:87:f7:61:aa:91:ef:63:4d:08:61: 51:1a:de:41:f2:31:e9:f8:b4:d7:d4:9a:d9:47:d6: 8c:65:39:e8:b6:19:d1:6d:3e:ef:a9:2a:db:63:e3: b7:31:c6:00:5c:6f:15:6d:65:5a:55:d3:9f:77:5c: 3d:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:3A:8C:42:9F:62:34:21:66:A8:19:8E:9B:5C:F7:6B:56:E4:0D:22 X509v3 Authority Key Identifier: keyid:85:4F:E7:27:53:60:D0:78:10:AF:FB:A6:C2:8F:FF:23:58:2A:20:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hU_nJ1Ng0HgQr_umwo__I1gqIOs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:63:52:72:2b:10:ec:c4:f3:d5:c1:7e:b7:e4:a2:ad:76:b3: 61:a6:e9:d9:8a:fd:de:5c:3f:61:bd:c5:5f:40:3c:07:19:df: bf:f7:10:5f:f4:17:cf:23:f9:e9:0b:68:a2:3b:fb:7e:40:23: 8a:fc:82:4e:c9:1f:3c:8c:97:eb:80:2d:36:3e:de:2d:3b:f3: e1:7b:17:50:b1:8e:75:ea:57:96:95:3e:25:c2:71:fc:50:8e: 7f:81:04:94:d0:e6:e1:3e:c2:79:7c:61:20:72:04:cb:8c:76: a0:30:80:b4:11:cc:d7:ad:a6:96:02:80:d0:53:bd:d2:b3:ac: 4c:bf:cc:98:f8:d4:df:14:5c:7c:39:d2:a6:5d:e7:36:86:5d: cf:73:6c:bb:6e:4c:b6:ef:26:9e:60:fc:83:50:2a:3f:9d:38: 37:10:e1:a6:7c:f3:c5:b9:19:99:75:eb:49:38:d2:a7:cd:8c: ec:51:59:d4:7f:4d:8b:93:66:ea:58:b3:c2:c1:82:08:83:01: 33:79:f8:ca:2d:26:e3:a7:83:a4:62:28:b0:60:6a:6a:f7:be: 8b:6e:1c:f2:05:1c:b3:64:c9:6d:92:d8:1a:8a:d0:7f:ef:56: bf:f2:3a:60:df:35:49:28:87:35:bb:c1:9f:89:c3:37:48:8a: 5b:49:d6:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU4QkUxMTAvBgNVBAUTKDg1NEZFNzI3NTM2MEQwNzgxMEFGRkJBNkMyOEZGRjIz NTgyQTIwRUIwHhcNMjUxMDE5MDUwMDMyWhcNMjUxMDI2MDUwMDMyWjAYMRYwFAYD VQQDEw02OGY0NzA3MC1jZGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvAL1CjIYHlExefMxA9dOAR7gi5ln6xod0jIcyegNWBMOXjOEe0qSZZTPPihx RnkjNs5usTSsXLCQ8wJFql3Ct1yhwAJruFL6vpHKgE4mo175OAdAitIKMepYJWcx /YZYfXoxRFSr+WaunwwMa3U6uj7Fwu3lr5HH7JQFBGP1G2DH6c5XZPZ/jILJsv4s jVvCFeMs4ese4Szn5yNkPZdUQUNqrTDAIVYkl+VLRTVxNLudPi/SfikWd/7JL5nk lAuHxNycEXwntYf3YaqR72NNCGFRGt5B8jHp+LTX1JrZR9aMZTnothnRbT7vqSrb Y+O3McYAXG8VbWVaVdOfd1w9lQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNQ6jEKf YjQhZqgZjptc92tW5A0iMB8GA1UdIwQYMBaAFIVP5ydTYNB4EK/7psKP/yNYKiDr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NThCRS83QzdGQjJGRUMy MTkxMUVEODAyNTZGNEVDNEY5QUUwMi9oVV9uSjFOZzBIZ1FyX3Vtd29fX0kxZ3FJ T3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hVX25KMU5nMEhnUXJfdW13b19fSTFncUlPcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NThCRS83QzdGQjJGRUMyMTkxMUVEODAyNTZGNEVDNEY5QUUwMi9oVV9uSjFOZzBI Z1FyX3Vtd29fX0kxZ3FJT3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgY1JyKxDsxPPVwX635KKtdrNhpunZiv3eXD9hvcVfQDwHGd+/9xBf 9BfPI/npC2iiO/t+QCOK/IJOyR88jJfrgC02Pt4tO/PhexdQsY516leWlT4lwnH8 UI5/gQSU0ObhPsJ5fGEgcgTLjHagMIC0EczXraaWAoDQU73Ss6xMv8yY+NTfFFx8 OdKmXec2hl3Pc2y7bky27yaeYPyDUCo/nTg3EOGmfPPFuRmZdetJONKnzYzsUVnU f02Lk2bqWLPCwYIIgwEzefjKLSbjp4OkYiiwYGpq976LbhzyBRyzZMltktgaitB/ 71a/8jpg3zVJKIc1u8GficM3SIpbSda/ -----END CERTIFICATE-----Generated at Tue Oct 21 03:57:20 2025 by rpki-client